Search results

Dns poisoning. Which resolver are you using at opennic?

They were selling those for $30/yr not long ago. I had a whole set of them. Can't say I'm disappointed or anything. They work as advertised which is a lot more than I can say for some LEB providers.

Maybe I missed it, but how does opennicproject actually deal with rogue or compromised DNS servers?

Yes, but only for burst attacks. If you're sustained, please look elsewhere.

@fcfc Just to double check, you're not one of the rare breed of people who are on a 10.1.0.0/24 subnet are you?  :)

http://en.wikipedia.org/wiki/Decriminalised_parking_enforcement

http://www.codinghorror.com/blog/2013/09/the-2013-htpc-build.html Chenbro makes a line of mini-itx hot swap cases.  ES34069-BK-180 and SR30169.  Fractal design also has one that holds 6 drives but isn't hot swap.  In any case, the i3-4130T haswell idles at 15 watts if that's close enough :)...

Waste of electricity.  Digital fiat money for the environment! :)

I'm using zabbix so I've set it up to do the usual ioping -c 1 command with a few awks to strip the output.  Zabbix graphs it for me.  I don't have any scripts to do it otherwise.

Both 'return 301' and 'rewrite .... permanent' in the above examples will barf out the same 301 redirect http code.  The only difference between the two is that the 'return' examples don't need the extra regex. note: if you use rewrite without either permanent (301) or redirect (302) flags...

From my monitoring graphs, neither are good. I've resorted to count 1 every 5 mins. The time average then gives you a better view of what the nominal range is, what happens when an io storm hits, etc. If you must do this manually, just do the 10 at different times throughout the day.

As a customer, if I want a detailed response, I'll ask for one.  Too detailed right off the bat makes me feel like they're trying to shift the blame or come up with an excuse.  I think Aldryic's offer of more detailed information is a good balance.

So far, not looking good at RFD.  A few random suspensions, template issues, all your usual teething pains.

Provisioning api makes up for the lack of a SAN, to be honest.

Duh. I'm brain dead. Good call.

One thing I never really understood is why bother using the zabbix_sender trapper if you could setup an active item check with userparameters?

It's pretty well defined.  But, it's only currently an issue if you give admin access and have third-party modules installed that are vulnerable to object injection.  The base install doesn't have the 'hook' to do much other than some internal bit twiddling in php :)  The immediate risk is low...

I took a closer look and that module doesn't use the data.js which is required to integrate with the Kount advanced fraud detection service.  So you're basically looking at basic gateway-level things like carding detection - which brings us back to more or less the same level as the Stripe...

There's also the issue of trust. If I'm going to place proprietary code somewhere, I'd like to be able to trust the host to take VM/container security seriously. And while you might be the whitest white hat in the bunch, guilt by association is a bad mark to shake. As an active member...

I prefer encrypting the backups.  Call me weird.  I wrote an alternative if you don't have access to trusted-backup-server.org  :P http://vpsboard.com/topic/2422-how-to-do-encrypted-backups-with-duplyduplicity/ As for writing your own backup script, instead of just emailing the logs, how about...